Splunk App for Windows Infrastructure

Gain context and insights across your interconnected IT infrastructure for rapid root-cause analysis and reduced support costs. Compare previously siloed sets of data for new levels of visibility into the health and performance of your Active Directory and Windows environments.

Splunk App for Microsoft Exchange

Gain insights into your messaging infrastructure and non-Exchange devices and services with a unified view of the entire service infrastructure. The Splunk App for Microsoft Exchange consumes logs from your Microsoft Exchange systems to give you deep visibility into the health and performance of your Microsoft Exchange environment—from Edge and Hub Transport servers to the Client Access servers and the Mailbox Store itself.

Monitor Windows Event Logs on any event log channel that is available on any Windows machine. Collect logs on the local machine, or gather log data remotely using the Splunk Universal Forwarder.

Monitor performance with in-depth data on Windows machines with Splunk and then alert or report on that data. Any performance counter that is available in Performance Monitor is also available to Splunk. You can monitor performance locally or with a universal forwarder.

Monitor changes to the Windows Registry using the universal forwarder and Splunk’s built-in registry monitoring capabilities.

Audit any changes to the Active Directory including changes to user, group, machine and group policy objects.

Certifications

Splunk Enterprise on Windows and the Splunk Universal Forwarder for Windows are certified for the Windows Server platform.

As a Microsoft Certified Partner, Splunk is committed to delivering innovative solutions and technologies that enable organizations to be operationally aware of the Windows IT infrastructure they manage.